2 # InspIRCd -- Internet Relay Chat Daemon
4 # Copyright (C) 2007 Dennis Friis <peavey@inspircd.org>
5 # Copyright (C) 2007 Craig Edwards <craigedwards@brainbox.cc>
7 # This file is part of InspIRCd. InspIRCd is free software: you can
8 # redistribute it and/or modify it under the terms of the GNU General Public
9 # License as published by the Free Software Foundation, version 2.
11 # This program is distributed in the hope that it will be useful, but WITHOUT
12 # ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
13 # FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
16 # You should have received a copy of the GNU General Public License
17 # along with this program. If not, see <http://www.gnu.org/licenses/>.
21 package make::opensslcert;
26 use warnings FATAL => qw(all);
28 use Exporter 'import';
30 our @EXPORT = qw(make_openssl_cert);
33 sub make_openssl_cert()
35 if (system 'openssl version >/dev/null 2>&1')
37 print "\e[1;31mCertificate generation failed:\e[0m unable to find 'openssl' in the PATH!\n";
40 open (FH, ">openssl.template");
41 my $commonname = promptstring_s('What is the hostname of your server?', 'irc.example.com');
42 my $email = promptstring_s('What email address can you be contacted at?', 'example@example.com');
43 my $unit = promptstring_s('What is the name of your unit?', 'Server Admins');
44 my $org = promptstring_s('What is the name of your organization?', 'Example IRC Network');
45 my $city = promptstring_s('What city are you located in?', 'Example City');
46 my $state = promptstring_s('What state are you located in?', 'Example State');
47 my $country = promptstring_s('What is the ISO 3166-1 code for the country you are located in?', 'XZ');
48 my $time = promptstring_s('How many days do you want your certificate to be valid for?', '365');
49 my $use_1024 = promptstring_s('Do you want to generate less secure dhparams which are compatible with old versions of Java?', 'n');
60 my $dhbits = $use_1024 =~ /^(1|on|true|yes|y)$/ ? 1024 : 2048;
61 system("cat openssl.template | openssl req -x509 -nodes -newkey rsa:2048 -keyout key.pem -out cert.pem -days $time 2>/dev/null");
62 system("openssl dhparam -out dhparams.pem $dhbits");
63 unlink("openssl.template");